From 597a61fb4b9e8ca4b7c126479dab60e31cbbb7b6 Mon Sep 17 00:00:00 2001
From: asonix <asonix@asonix.dog>
Date: Thu, 23 Apr 2020 13:52:57 -0500
Subject: [PATCH] Make note about Date header in masto compat

---
 http-signature-normalization-actix/src/lib.rs | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/http-signature-normalization-actix/src/lib.rs b/http-signature-normalization-actix/src/lib.rs
index d3881ce..400c35d 100644
--- a/http-signature-normalization-actix/src/lib.rs
+++ b/http-signature-normalization-actix/src/lib.rs
@@ -345,6 +345,9 @@ impl Config {
     /// Opt out of using the (created) and (expires) fields introduced in draft 11
     ///
     /// Use this for compatibility with mastodon
+    ///
+    /// Note that by enabling this, the Date header becomes required on requests. This is to
+    /// prevent replay attacks
     pub fn dont_use_created_field(self) -> Self {
         Config {
             config: self.config.dont_use_created_field(),